Fintech Cyber Weekly

Fintech Weekly Digest: Oct 1, 2025 — Stablecoin Pilots, Quantum Trading, Data Breaches & U.S. Expansion Moves

By

Alex Novikov

Published on

in

Welcome to this week’s edition of our Fintech Weekly Digest. From Visa’s stablecoin pilot and HSBC’s quantum experiments to high-profile data breaches and bold U.S. expansion plays by Nubank and Revolut, the past week showcased how fintech continues to blur the lines between innovation, security, and global growth.

Trends & Innovation

  • Visa pilots stablecoins for faster cross-border payouts.  Visa launched a pilot using pre-funded stablecoins via Visa Direct to speed up international B2B transfers and reduce trapped liquidity. This move signals how stablecoins may soon become mainstream tools for enterprise payment networks.  Reuters
  • Swift + 30+ banks to co-develop a blockchain-based ledger. Announced at Sibos Frankfurt, the initiative targets tokenised assets, stablecoins, and real-time settlement experiments across major institutions. If successful, it could accelerate global adoption of digital asset settlement standards.. Finextra Research
  • HSBC says quantum computing can improve bond trading. A trial indicated route-finding and optimisation gains for fixed-income workflows, highlighting near-term enterprise use cases for quantum. The bank sees this as a first step toward broader quantum integration in finance.. Reuters
  • PhonePe files confidentially for a blockbuster India IPO.The Walmart-backed payments leader is targeting a mid-2026 listing, underscoring the scale of India’s fintech market. Analysts expect it could be one of the largest fintech IPOs globally.  Reuters
  • Sibos 2025 spotlights cyber, AI and stablecoins. Day-two takeaways: tighter cyber partnerships, maturing stablecoin programs, and AI moving from pilots to production. Speakers noted that financial institutions now see AI less as “innovation” and more as “infrastructure.” Fintech Future

Security & Cyber Threat

  • Hundreds of thousands of Indian bank transfer records exposed. An unsecured cloud server leaked detailed transfer forms linked to dozens of banks before being locked down. The breach illustrates the risks of weak cloud configurations in financial data handling.  TechCrunch
  • Harrods customer data leaked via third-party provider. The luxury retailer said names and contact details were accessed; payment data and passwords were not impacted. The incident underscores how vendor ecosystems remain a soft target for attackers.  AP News
  • Boyd Gaming discloses breach after network intrusion. The casino operator reported employee and other personal data exposure—part of a broader uptick in attacks on gaming/fintech adjacencies. Security analysts expect heightened scrutiny of hybrid entertainment-fintech platforms. SecurityWeek
  • Week-in-breach recap flags insider leak at FinWise and more. Kaseya’s roundup highlights insider risks, smishing campaigns, and third-party exposures affecting financial services. The findings reflect how human factors continue to be the weakest security link.  Kaseya
  • Google adds AI-based ransomware detection to Drive. New desktop feature halts syncing on suspected mass-encryption and offers one-click restore—useful for fintechs’ SaaS data hygiene. Google positions the tool as part of a broader push to harden cloud collaboration security.  The Verge

Product & Platform Launches

  • Nubank takes first step toward U.S. expansion. The LatAm giant applied for a U.S. national bank charter as it explores rolling out its digital banking platform stateside. If approved, it would make Nubank one of the first major Latin American fintechs to compete directly in the U.S. market.  PYMNTS.com
  • Thunes unveils Pay-to-Banks over Swift rails. Banks can push payouts to 130+ countries through Thunes via existing Swift connectivity, complementing its Pay-to-Wallets service. The launch bridges legacy infrastructure with modern fintech rails, improving reach for cross-border payments. PYMNTS.com
  • Worldpay launches Embedded Finance Engine for platforms. ACloud CMS to streamline document workflows and automation across financial institutions. The platform is designed to help banks scale document-heavy operations while remaining compliant. PYMNTS.com
  • Fiserv rolls out “Content Next,” an AI-ready content platform. Cloud CMS to streamline document workflows and automation across financial institutions. PYMNTS.com
  • Revolut launches high-yield savings for U.S. customers. New account offering extends its American retail push with capped deposits and aggressive rates. Analysts expect the move to intensify competition with both neobanks and traditional U.S. banks. PYMNTS.com

Final Words

As fintech matures into a global backbone of payments, security, and digital assets, the industry is evolving faster than ever. Stay tuned for next week’s roundup—where we’ll keep tracking the innovations, risks, and launches shaping the future of finance.

Book a Call with ONSEC

, , , ,

Read Next:

Leave a comment

ONSEC

is a boutique penetration testing company with 15+ years of experience and over 450 successful projects worldwide. We specialize in protecting fintech platforms—securing applications, APIs, payment systems, and cloud infrastructure from evolving threats. This newsletter was created to help fintech leaders stay ahead of cyber risks. Expect updates on critical vulnerabilities, compliance and regulatory shifts, and real-world breaches that impact financial platforms.

 ONSEC

Request a Pentest Quote

Talk to the ONSEC Team

Subscribe

Stay updated with our latest tips and other news by joining our newsletter.